CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6573 matches found

NVD•added 2022/06/17 1:15 p.m.•12 views

CVE-2022-2113

Cross-site Scripting XSS - Stored in GitHub repository inventree/inventree prior to 0.7.2...

8.4CVSS0.00734EPSS

Exploits1References2

Prion•added 2022/06/17 1:15 p.m.•9 views

Unrestricted file upload

Unrestricted Upload of File with Dangerous Type in GitHub repository inventree/inventree prior to 0.7.2...

6.5CVSS8.7AI score0.01168EPSS

Exploits1References2Affected Software1

CVE•added 2022/06/17 10:20 a.m.•57 views

CVE-2022-2113

InvenTree (open source inventory system) has a stored XSS vulnerability in versions prior to 0.7.2, arising from insufficient filtering/escaping of parameter data. The issue affects the part/description data stored and can lead to execution of malicious JavaScript on the client side when rendered...

8.4CVSS5.6AI score0.00734EPSS

Exploits1References2Affected Software1

CVE•added 2022/06/17 10:15 a.m.•79 views

CVE-2022-2112

CVE-2022-2112 corresponds to a CSV injection in Inventree (inventree/inventree) prior to 0.7.2, caused by improper neutralization of formula elements in CSV data (CSV escape filtering). Affected component: CSV export generation in Inventree before version 0.7.2. Impact: potential for formula inje...

9CVSS8.7AI score0.01181EPSS

Exploits1References2Affected Software1

Prion•added 2022/06/16 10:15 a.m.•11 views

Default credentials

Weak Password Requirements in GitHub repository kromitgmbh/titra prior to 0.78.1...

5CVSS9.5AI score0.00971EPSS

Exploits1References2Affected Software1

Cvelist•added 2022/06/16 9:50 a.m.•23 views

CVE-2022-2098 Weak Password Requirements in kromitgmbh/titra

Weak Password Requirements in GitHub repository kromitgmbh/titra prior to 0.78.1...

7.1CVSS9.7AI score0.00971EPSS

Exploits1References2

OSV•added 2022/06/16 9:50 a.m.•14 views

CVE-2022-2098 Weak Password Requirements in kromitgmbh/titra

Weak Password Requirements in GitHub repository kromitgmbh/titra prior to 0.78.1...

7.1CVSS7.4AI score0.00971EPSS

Exploits1References4

Github Security Blog•added 2022/06/15 12:0 a.m.•29 views

Cross-site Scripting in NocoDB

Cross-site Scripting XSS - Stored in GitHub repository nocodb/nocodb prior to 0.91.9...

7.3CVSS1.1AI score0.00678EPSS

Exploits1References7Affected Software1

Prion•added 2022/06/14 9:15 a.m.•13 views

Cross site scripting

Cross-site Scripting XSS - Stored in GitHub repository nocodb/nocodb prior to 0.91.7+...

3.5CVSS5.3AI score0.00678EPSS

Exploits1References2Affected Software1

CVE•added 2022/06/14 8:40 a.m.•81 views

CVE-2022-2079

CVE-2022-2079 corresponds to a stored cross-site scripting vulnerability in NocoDB (nocodb/nocodb) prior to version 0.91.7+. The issue arises from lack of proper data validation/filtering of user-supplied data and its output in the comments feature. Multiple sources (NVD/NVDR, CNVD, Red Hat, OSV,...

7.3CVSS5.5AI score0.00678EPSS

Exploits1References2Affected Software1

OSV•added 2022/06/14 12:0 a.m.•24 views

GHSA-FP76-F299-V3HJ Cross-site Scripting in FacturaScripts

Cross-site Scripting XSS - Stored in GitHub repository neorazorx/facturascripts prior to 2022.06...

5.4CVSS5.2AI score0.00628EPSS

Exploits1References4

NVD•added 2022/06/13 1:15 p.m.•22 views

CVE-2022-2066

Cross-site Scripting XSS - Reflected in GitHub repository neorazorx/facturascripts prior to 2022.06...

7.1CVSS0.00886EPSS

Exploits1References2